These eye-opening attacks continue to prove that no matter how sophisticated our protections get, they may not be sufficient. Nonetheless, one thing is certain – our security programs are only as strong as the foundational controls they’re built on.

“Businesses may invest more (or less) in cybersecurity, and sophisticated technologies certainly can help prevent the spread of attacks or reduce impacts. But threat actors will likely remain ahead of the game by leveraging new tactics and techniques as their motives and technologies evolve.”

“Organizations that hew the basics of cybersecurity . . . are likely better prepared to manage simple attacks and preserve resources for more complex incidents,” the report added.

With the vast majority of breaches stemming from a lack of fundamental IT and security controls, basic protections are essential to protecting any organization – from SMBs to large enterprises.

By focusing on specific and obtainable goals, organizations can create significant management and operational benefits, including better visibility, management of resources, and lower costs.

To learn more about how to build a solid foundation using basic security controls, please join us on Thursday, November 10 for Tripwire University: Back to Basics. In this half-day live virtual event, our subject matter experts will demonstrate:

The organizational impact of common flaws you might encounter in foundational controls.

How to verify that your controls are ready for emerging threats.

How to reinforce your controls for the future.

Why technologies like inventory, configuration, vulnerability assessment and log management are essential for securing and ensuring availability of IT systems.